CVE-2008-5363

NONECVSS 0.0

0.0

The ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, does not validate character elements during retrieval from the dictionary data structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF file.

🔗 References (18)

cve@mitrehttp://secunia.com/advisories/33390
cve@mitrehttp://secunia.com/advisories/34226
cve@mitrehttp://security.gentoo.org/glsa/glsa-200903-23.xml
cve@mitrehttp://securityreason.com/securityalert/4692
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
cve@mitrehttp://support.avaya.com/elmodocs2/security/ASA-2009-020.htm
cve@mitrehttp://www.adobe.com/support/security/bulletins/apsb08-22.html
cve@mitrehttp://www.isecpartners.com/advisories/2008-01-flash.txt
cve@mitrehttp://www.securityfocus.com/archive/1/498561/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/33390
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34226
af854a3a-2127-422b-91ae-364da2661108http://security.gentoo.org/glsa/glsa-200903-23.xml
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4692
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
af854a3a-2127-422b-91ae-364da2661108http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm

Is Your Infrastructure Affected by CVE-2008-5363?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-5363

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-5363?